Re: TLS PSK for client authentication

To: nbd@other.debian.org
Subject: Re: TLS PSK for client authentication
From: "Richard W.M. Jones" <rjones@redhat.com>
Date: Mon, 25 Jun 2018 18:23:19 +0100
Message-id: <[🔎] 20180625172319.GB2631@redhat.com>
In-reply-to: <[🔎] 20180625132648.GA2631@redhat.com>
References: <[🔎] 20180625132648.GA2631@redhat.com>

On Mon, Jun 25, 2018 at 02:26:48PM +0100, Richard W.M. Jones wrote:
> TLS PSK is a standardized variant of TLS which allows clients to
> authenticate using Pre-Shared Keys.  It is considerably simpler than
> setting up X.509 certificates.  I've worked on an implementation of
> TLS PSK for nbdkit (server), and I'm working on implementations for
> qemu (client) and qemu-nbd (server) too.

Initial patches posted for qemu (client & server):

  https://lists.nongnu.org/archive/html/qemu-devel/2018-06/threads.html#07252

and for nbdkit:

  https://www.redhat.com/archives/libguestfs/2018-June/msg00115.html

Rich.

-- 
Richard Jones, Virtualization Group, Red Hat http://people.redhat.com/~rjones
Read my programming and virtualization blog: http://rwmj.wordpress.com
virt-p2v converts physical machines to virtual machines.  Boot with a
live CD or over the network (PXE) and turn machines into KVM guests.
http://libguestfs.org/virt-v2v

Reply to:

Follow-Ups:
- Re: TLS PSK for client authentication
  - From: "Richard W.M. Jones" <rjones@redhat.com>

References:
- TLS PSK for client authentication
  - From: "Richard W.M. Jones" <rjones@redhat.com>

Prev by Date: TLS PSK for client authentication
Next by Date: Re: TLS PSK for client authentication
Previous by thread: TLS PSK for client authentication
Next by thread: Re: TLS PSK for client authentication
Index(es):
- Date
- Thread